
United States Patent and Trademark Office 



UNITED STATES DEPARTMENT OF COMMERCE 
United States Patent and Trademark Office 
Address: COMMISSIONER FOR PATENTS 
P.O. Box 1450 

Alexandria, Virginia 22313-1450 
www.uspio.gov 



| APPLICATION NO. 


FILING DATE 


FIRST NAMED INVENTOR 


ATTORNEY DOCKET NO. 


CONFIRMATION NO. 


10/612,292 


06/30/2003 


Selim Aissi 


884.935US1 


5816 



21186 7590 06/19/2008 

SCHWEGMAN, LUNDBERG & WOESSNER, P.A. 
P.O. BOX 2938 
MINNEAPOLIS, MN 55402 



EXAMINER 



BADII, BEHRANG 



ART UNIT 



PAPER NUMBER 



3694 



MAIL DATE 



DELIVERY MODE 



06/19/2008 PAPER 

Please find below and/or attached an Office communication concerning this application or proceeding. 

The time period for reply, if any, is set in the attached communication. 



PTOL-90A (Rev. 04/07) 



Supplemental 
Notice of Allowability 


Application No. 

10/612,292 


Applicant(s) 

AISSI, SELIM 


Examiner 
BEHRANG BAD 1 1 


Art Unit 

3694 





- The MAILING DATE of this communication appears on the cover sheet with the correspondence address- 
All claims being allowable, PROSECUTION ON THE MERITS IS (OR REMAINS) CLOSED in this application. If not included 
herewith (or previously mailed), a Notice of Allowance (PTOL-85) or other appropriate communication will be mailed in due course. THIS 
NOTICE OF ALLOWABILITY IS NOT A GRANT OF PATENT RIGHTS. This application is subject to withdrawal from issue at the initiative 
of the Office or upon petition by the applicant. See 37 CFR 1.313 and MPEP 1308. 
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The allowed claim(s) is/are 51.52,54-56 and 58 . 
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1. □ Certified copies of the priority documents have been received. 

2>G Certified copies of the priority documents have been received in Application No. . 

3. □^Copies of the certified copies of the priority documents have been received in this national stage application from the 
Internfrfjonal Bureau (PCT Rule 17.2(a)). 
* Certified copiesjjof received: " . 

Applicant hasJTHREE MONTHS FROM THE "MAILING DATE" of this communication to file a reply complying with the requirements 
noted below. Failure to timely comply will result in ABANDONMENT of this application. 
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4. □ A SUBSTITUTE OATH OR DECLARATION must be submitted. Note the attached EXAMINER'S AMENDMENT or NOTICE OF 
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Paper No./Mail Date . 
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Application/Control Number: 10/612,292 Page 
Art Unit: 3694 

EXAMINER'S AMENDMENT 

An examiner's amendment to the record appears below. Should the 
changes and/or additions be unacceptable to applicant, an amendment may be 
filed as provided by 37 CFR 1 .312. To ensure consideration of such an 
amendment, it MUST be submitted no later than the payment of the issue fee. 

Authorization for this examiner's amendment was given in a telephone 
interview with Gregg A Peacock on 2/1 1/08. 

The application has been amended as follows: 

Claims 53 and 57 have been cancelled. 

Claims 51, 54, 55 and 58 have been amended as follows: 

Independent claim 51 has been amended to include claim 53 such as 
follows: 

51. (Currently Amended) A machine-readable medium that provides 
instructions, which when executed by a wireless device, cause said machine to 
perform operations comprising: 

selectively auditing a number of transactions between a wireless 
computing device and a server based on a type for the number of transactions, 
wherein selectively auditing of the number of transactions includes securely 
storing at least one attribute of selected audited transactions within the wireless 
computing device, wherein securely storing the at least one attribute of one of the 
selected audited transactions comprises: 
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storing at least one attribute of the selected audited transaction into an 
audit log 

into a memory in the wireless computing device; 

encrypting the audit log based on an encryption key that is generated 
within the 

wireless computing device and wherein the encryption key is stored within a 
memory within a cryptographic processing module of the wireless computing 
device; 

generating an integrity metric of the audit log; and 

generating a signature of the integrity metric with a signature key that is 
generated and stored within the wireless computing device 

incrementing an audit counter; and 

storing a value of the audit counter, the integrity metric and the signature 
in the audit log 

storing the encrypted audit log in a memory of a cryptographic processing 
module in the wireless computing device which performed the encrypting, in 
response to a determination that an audit session that includes the number of 
audit transactions is a high-valued audit session 

storing the encrypted audit log in a memory that is external to the 
cryptographic 
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processing module, in response to a determination that the audit session is not a 
high- 
value audit session; and 

the selectively auditing of the number of transactions includes opening an 
audit session upon receipt of one of the selected audited transactions, wherein 
securely storing the at least one attribute of one of the selected audited 
transactions includes storing at least one attribute of the selected audited 
transaction into an audit log into a memory in the wireless device. 

Dependent claim 54 has been amended to depend on claim 51 such as 
follows: 

54. (Currently Amended) The machine-readable medium of claim 51 , 
wherein selectively auditing of the number of transactions further comprises: 

closing the audit session; and 

generating a hash of the audit log after the audit session is closed. 

Independent claim 55 has been amended to include claim 57 such as 
follows: 

55. (Currently Amended) A method comprising: 

selectively auditing a number of transactions between a wireless 
computing device and a server based on a type for the number of transactions, 
wherein selectively auditing of the number of transactions includes securely 
storing at least one attribute of selected audited transactions within the wireless 
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computing device, wherein securely storing the at least one attribute of one of the 
selected audited transactions comprises: 

storing at least one attribute of the selected audited transaction into an 
audit log 

into a memory in the wireless computing device; 

encrypting the audit log based on an encryption key that is generated 
within the 

wireless computing device and wherein the encryption key is stored within a 
memory within a cryptographic processing module of the wireless computing 
device; 

generating an integrity metric of the audit log; and 

generating a signature of the integrity metric with a signature key that is 
generated and stored within the wireless computing device 

incrementing an audit counter; and 

storing a value of the audit counter, the integrity metric and the signature 

in the 
audit log 

storing the encrypted audit log in a memory of a cryptographic processing 
module in the wireless computing device which performed the encrypting, in 
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response to a determination that an audit session that includes the number of 
audit transactions is a high-valued audit session, 

storing the encrypted audit log in a memory that is external to the 
cryptographic processing module, in response to a determination that the audit 
session is not a high- value audit session; and, 

the selectively auditing of the number of transactions includes opening an 
audit session upon receipt of one of the selected audited transactions, wherein 
securely storing the at least one attribute of one of the selected audited 
transactions includes storing at least one attribute of the selected audited 
transaction into an audit log into a memory in the wireless device. 

Dependent claim 58 has been amended to depend on claim 55 such as 
follows: 

58. (Currently Amended) The method of claim 55, wherein selectively 
auditing of the number of transactions further comprises: 

closing the audit session; and 

generating a hash of the audit log after the audit session is closed. 

Allowable Subject Matter 

The following is an examiner's statement of reasons for allowance: 

The closest prior art of record is Ogg et al. USP 6,868,406. Ogg et al. 
discloses an on-line value bearing item (VBI) printing system that includes one or 
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more cryptographic modules and a central database is disclosed. The 
cryptographic modules are capable of implementing the USPS Information Based 
Indicia Program Postal Security Device Performance Criteria and other required 
VBI standards. The modules encipher the information stored in the central 
database for all of the on-line VBI system customers and are capable of 
preventing access to the database by unauthorized users. Additionally, each 
cryptographic module is capable of providing audit support functions that enable 
secure logging of all sensitive actions. 

In regards to claim 51 & 55, Ogg et al. taken either individually or in 
combination with other prior art of record fails to teach or suggest storing at least 
one attribute of the selected audited transaction into an audit log into a memory 
in the wireless computing device; encrypting the audit log based on an encryption 
key that is generated within the wireless computing device and wherein the 
encryption key is stored within a memory within a cryptographic processing 
module of the wireless computing device; generating an integrity metric of the 
audit log; and generating a signature of the integrity metric with a signature key 
that is generated and stored within the wireless computing device incrementing 
an audit counter; and storing a value of the audit counter, the integrity metric and 
the signature in the audit log storing the encrypted audit log in a memory of a 
cryptographic processing module in the wireless computing device which 
performed the encrypting, in response to a determination that an audit session 
that includes the number of audit transactions is a high-valued audit session, 
storing the encrypted audit log in a memory that is external to the cryptographic 
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processing module, in response to a determination that the audit session is not a 
high- value audit session; and the selectively auditing of the number of 
transactions includes opening an audit session upon receipt of one of the 
selected audited transactions, wherein securely storing the at least one attribute 
of one of the selected audited transactions includes storing at least one attribute 
of the selected audited transaction into an audit log into a memory in the wireless 
device. 

Any comments considered necessary by applicant must be submitted no 
later than the payment of the issue fee and, to avoid processing delays, should 
preferably accompany the issue fee. Such submissions should be clearly labeled 
"Comments on Statement of Reasons for Allowance." 

Conclusion 

Any inquiry concerning this communication or earlier communications from 
the examiner should be directed to Behrang Badii whose telephone number is 
571-272-6879. The examiner can normally be reached on Monday-Friday. 

If attempts to reach the examiner by telephone are unsuccessful, the 
examiner's supervisor, James Trammell can be reached on 571-272-6712. The 
fax phone number for the organization where this application or proceeding is 
assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from 
the Patent Application Information Retrieval (PAIR) system. Status information 
for published applications may be obtained from either Private PAIR or Public 
PAIR. Status information for unpublished applications is available through 
Private PAIR only. For more information about the PAIR system, see http://pair- 
direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll- 
free). 

Any response to this action should be mailed to: 

Mail Stop Amendment 
Commissioner for Patents 
P.O. Box 1450 
Alexandria, VA 22313-1450 

or faxed to (571)273-8300 

Hand delivered responses should be brought to 

United States Patent and Trademark Office 
Customer Service Window 
Randolph Building 
401 Dulany Street 
Alexandria, VA 22314 

Any inquiry of a general nature or relatingto the status of this 
application or proceeding should be directed to the Technology 
Customer Service Office whose telephone number is 
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